Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/7ca3de-92c8-49fb-acae-9f1a5dbb41d6/1/2kjE4sKePrtq2oZSOyxIcrIlS_A.roa
File: 2kjE4sKePrtq2oZSOyxIcrIlS_A.roa (raw, json)
Hash identifier: cXHD76Yb+fbUC8Mj+zgerdR4o+EPqDfwzhL85Z65hRw=
Subject key identifier: DA:48:C4:E2:C2:9E:3E:BB:6A:DA:86:52:3B:2C:48:72:B2:25:4B:F0
Certificate issuer: /CN=02d6e8273f9051ac31cb95792cb51400dab714aa
Certificate serial: 34DC6D96
Authority key identifier: 02:D6:E8:27:3F:90:51:AC:31:CB:95:79:2C:B5:14:00:DA:B7:14:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AtboJz-QUawxy5V5LLUUANq3FKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/7ca3de-92c8-49fb-acae-9f1a5dbb41d6/1/2kjE4sKePrtq2oZSOyxIcrIlS_A.roa
Signing time: Sat 01 Jan 2022 12:01:04 +0000
ROA not before: Sat 01 Jan 2022 12:01:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50656
IP address blocks: 77.73.169.0/24 maxlen: 24
77.73.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 886861206 (0x34dc6d96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02d6e8273f9051ac31cb95792cb51400dab714aa
Validity
Not Before: Jan 1 12:01:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da48c4e2c29e3ebb6ada86523b2c4872b2254bf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0e:73:5c:c5:cc:58:a4:21:13:6b:38:03:b2:
6e:fd:d3:38:e1:ed:03:7c:d9:1e:14:89:76:c5:24:
42:3f:19:59:dc:d5:e5:a1:a1:48:d4:59:6c:a3:c2:
8e:4c:20:ef:9e:f8:d1:ae:18:6f:e0:62:39:85:f9:
d5:c9:66:43:6c:79:ce:03:d1:61:df:c3:8a:af:02:
64:1b:b8:be:61:13:93:13:30:bf:7c:5e:7a:6e:1f:
78:cf:b3:b8:1a:5a:f0:44:9d:2c:ad:e9:e5:da:a9:
f1:42:27:4e:8b:76:76:05:67:f4:2e:d4:a1:b2:37:
fa:13:06:0a:7c:c2:bf:27:31:f7:85:af:34:fa:c6:
09:60:a9:1e:67:79:ba:9d:75:8b:75:e3:dd:7e:34:
1b:d0:83:5a:f9:c2:10:97:02:17:5e:a7:5d:9d:d5:
ee:2c:01:2f:0a:48:4b:ef:03:8c:d0:16:58:f7:13:
ab:0e:4a:da:5f:1e:59:67:19:db:a4:0a:42:29:9b:
85:9e:52:ea:d3:58:cf:54:f3:6a:24:f0:9e:64:d4:
80:56:92:3d:07:c9:d7:74:76:58:23:52:1f:f8:8d:
11:23:aa:ad:fb:e3:64:93:5c:a0:8b:88:a8:28:8e:
dc:0e:44:b3:08:77:77:3c:db:16:e0:41:9a:59:5a:
45:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:48:C4:E2:C2:9E:3E:BB:6A:DA:86:52:3B:2C:48:72:B2:25:4B:F0
X509v3 Authority Key Identifier:
keyid:02:D6:E8:27:3F:90:51:AC:31:CB:95:79:2C:B5:14:00:DA:B7:14:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AtboJz-QUawxy5V5LLUUANq3FKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/7ca3de-92c8-49fb-acae-9f1a5dbb41d6/1/2kjE4sKePrtq2oZSOyxIcrIlS_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/7ca3de-92c8-49fb-acae-9f1a5dbb41d6/1/AtboJz-QUawxy5V5LLUUANq3FKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.168.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:a7:d2:cf:3c:af:f6:47:74:c3:68:b4:cf:60:f5:bf:22:9c:
b3:f9:80:dd:ce:9c:70:53:32:88:4a:a4:65:84:86:05:39:e4:
12:6c:7a:2e:24:3b:66:75:76:21:a8:3f:11:ca:01:c6:30:13:
84:c3:03:9d:e4:36:ef:cd:03:72:24:84:37:07:e7:24:c8:80:
80:f0:a4:ad:e8:2f:b4:3c:47:c3:ba:cb:a4:1b:2c:5a:59:cc:
9d:1f:28:13:c0:f6:cb:1c:a2:23:35:d7:cc:f2:28:2d:1e:66:
7e:d4:b6:a9:cc:05:dd:32:2e:e0:40:a2:51:7d:a8:aa:b2:f7:
53:01:c7:3d:17:15:78:ac:e7:14:a3:d1:19:c6:c0:74:a0:a3:
fe:ff:f6:b3:9c:6b:83:d5:f0:ea:25:c2:95:6d:9a:b3:26:fe:
90:61:76:5f:72:65:88:0b:d6:e2:32:79:10:af:77:e5:bb:77:
d6:c0:77:22:ce:04:7c:c9:3b:66:a4:6e:a9:c2:38:a8:51:aa:
c3:f6:30:97:51:ae:22:8d:ae:d0:7e:ba:a7:66:48:05:dd:41:
60:85:43:77:3f:89:58:4a:f2:e9:c9:1d:10:6a:33:88:87:ee:
63:a5:ae:57:d1:28:13:5b:a5:93:49:14:ec:5e:ab:59:9e:3a:
0a:b8:de:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:26 2023 by rpki-client on console-ams.rpki-client.org